Skill flagged — suspicious patterns detected
ClawHub Security flagged this skill as suspicious. Review the scan results before using.
Daily Ai News Skill Litiao
v1.0.0Aggregates and summarizes the latest AI news from multiple sources including AI news websites and web search. Uses Tavily API (preferred) or Brave Search (fa...
⭐ 0· 104·1 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The declared purpose (daily AI news using Tavily or Brave Search) matches the single required env var (TAVILY_API_KEY). However, the SKILL.md instructs the agent to run local Node scripts under ~/.openclaw/workspace/skills/tavily-search-litiao and to use a web reader tool; the skill package contains no code or install spec for those Node scripts and does not declare Node as a required binary. Expecting local scripts while shipping an instruction-only skill is an incoherence.
Instruction Scope
The instructions tell the agent to: cd into a specific user workspace path and run node scripts, use mcp__web_reader__webReader to fetch full articles, and call Tavily (if key present) or fallback to web_search. Asking the agent to run arbitrary local scripts from ~/.openclaw and to execute node commands expands scope beyond simple web search/summary behavior and could cause the agent to run unknown code on the host. The skill references filesystem paths and execution steps not present in the bundle.
Install Mechanism
There is no install specification and no shipped code, yet the SKILL.md expects a local Node-based toolchain and scripts. The skill does not declare Node (or any runtime) as a required binary. This mismatch means the skill implicitly assumes preexisting artifacts in the user's workspace, which is fragile and may cause the agent to run arbitrary local code if those artifacts exist.
Credentials
Only one environment variable is required: TAVILY_API_KEY. That matches the stated preference for Tavily search and is proportionate to the skill's declared functionality. No unrelated secrets or broad credential requests are present.
Persistence & Privilege
The skill is not always-on and does not request elevated/persistent privileges. It does not declare modifications to other skills or system-wide settings. Autonomous invocation remains allowed by default (normal for skills) but is not combined here with other high-risk privileges.
What to consider before installing
This skill is suspicious because its runtime instructions expect local Node scripts in ~/.openclaw/workspace/skills/tavily-search-litiao even though no code or install steps are included in the package and Node is not declared as a required binary. Before installing or enabling this skill:
- Ask the author for the missing code and an install spec (how to install the Node scripts and any dependencies). Verify those scripts' source and contents.
- Do not provide your TAVILY_API_KEY until you can inspect the code that will use it. Confirm how and where the key is sent/stored by the scripts.
- If the skill will run local scripts, review those scripts for network calls, exfiltration, or commands that access other parts of your filesystem.
- Prefer skills that either are instruction-only and only call platform-provided web/tools (no local exec), or that include a clear, auditable install step and declared required binaries.
- If you test this skill, run it in a sandboxed environment (no sensitive credentials) and monitor network activity.
Given the clear mismatch between instructions and packaged contents, treat this skill as untrusted until the missing artifacts and their behavior are verified.Like a lobster shell, security has layers — review code before you run it.
latestvk97baxyyq4kphjfn3790bxcrmx83379a
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📰 Clawdis
EnvTAVILY_API_KEY